Security

QuietShell – Executing PowerShell without a Console Window

Posted on June 19, 2025 by Trevor Jones in C#, Powershell

For some time I've used a simple VBScript wrapper in code projects and scheduled tasks to allow silent execution of PowerShell scripts in the user context without displaying a console window: p = CreateObject("Scripting.FileSystemObject").GetParentFolderName(WScript.ScriptFullName) location = p &"\"& WScript.Arguments(0) command = "powershell.exe -nologo -ExecutionPolicy Bypass -File """ &location &"""" set shell = CreateObject("WScript.Shell") shell.Run command,0 … Continue reading QuietShell – Executing PowerShell without a Console Window →

Harnessing AI in PowerShell: Prompting like a Pro

Posted on January 24, 2025 by Trevor Jones in AI, Powershell

Understanding Effective AI Prompting: Core PrinciplesClarity and SpecificityContext is KingStructured Problem PresentationIterative RefinementError Message InclusionVersion and Environment DetailsPerformance RequirementsSecurity ContextCode GenerationCode Review and OptimizationBest Practices ImplementationThe Art of Iterative PromptingStarting with a Basic PromptRefining Your PromptFollowing UpExtended PowerShell-Specific ExamplesScenario 1: Active Directory User ManagementScenario 2: Performance OptimizationUnderstanding AI's Problem-Solving ApproachAdvanced Prompting TechniquesRole-Based PromptingComparative PromptingEducational PromptingThe … Continue reading Harnessing AI in PowerShell: Prompting like a Pro →

Getting an access token for Microsoft Entra in PowerShell using the Web Account Manager (WAM) broker in Windows

Posted on November 28, 2024November 28, 2024 by Trevor Jones in Azure, C#, Intune, Powershell

Some months ago, in my quest to look at different methods for obtaining an access token interactively for Microsoft Graph in PowerShell, I wrote a simple PowerShell wrapper around the Microsoft.Identity.Client library, aka MSAL.Net - the supported MS library for authenticating with Microsoft Entra. Microsoft's apps and modules have been trending toward using the Web … Continue reading Getting an access token for Microsoft Entra in PowerShell using the Web Account Manager (WAM) broker in Windows →

Activating PIM Roles that require MFA or Conditional Access Authentication Context with PowerShell

Posted on November 26, 2024 by Trevor Jones in Azure, Powershell, Security

For some time, I've been activating and scheduling activations for Azure roles under Privileged Identity Management (PIM) using the Microsoft Graph PowerShell SDK. However recently we secured these role activations to require a conditional access authentication context with MFA. This basically requires me to MFA when I activate a role with PIM. Problem is, by … Continue reading Activating PIM Roles that require MFA or Conditional Access Authentication Context with PowerShell →